Stay organized with collections
Save and categorize content based on your preferences.
Change log for GCP_CLOUDSQL
Date
Changes
2024-09-27
- Mapped "labels._HOSTNAME" to "principal.hostname" and "principl.asset.hostname" for the sqlserver.err logs
- Mapped "textPayload" log field to "metadata.description" for the sqlserver.err logs
- Extracted the user from the "textPayload" log field and mapped to "target.user.userid" for the sqlserver.err logs
2024-09-05
Enhancement:
- Mapped "resource.labels.cluster_id" to "target.resource.id".
- Mapped "labels.CONSUMER_PROJECT" to "target.asset.attribute.cloud.project.id".
- Mapped "event_type" to "USER_LOGIN" when "resource_type" is either "cloudsql_database" or "alloydb.googleapis.com/Instance".
2024-07-19
Added additional mappings for deprecated noun.labels.
2024-06-13
Enhancement:
- Added "gsub" to remove "\n" from the "textPayload" field.
2024-05-15
Enhancement:
- Added new Grok patterns to parse "textPayload" field.
2023-11-29
- Aligned "principal/target.hostname" and "principal/target.asset.hostname" mapping.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-04-02 UTC."],[[["Recent updates on September 27, 2024, include mapping changes for \"labels._HOSTNAME\" to \"principal.hostname\" and \"principl.asset.hostname\", \"textPayload\" to \"metadata.description\", and user extraction to \"target.user.userid\" within sqlserver.err logs."],["On September 5, 2024, \"resource.labels.cluster_id\" was mapped to \"target.resource.id\", \"labels.CONSUMER_PROJECT\" to \"target.asset.attribute.cloud.project.id\", and \"event_type\" to \"USER_LOGIN\" for specific resource types."],["Enhancements on June 13, 2024, added \"gsub\" to remove \"\\\\n\" from the \"textPayload\" field, and on May 15, 2024, new Grok patterns were introduced for parsing the same field."],["The change log includes updates from November 29, 2023, where mappings for \"principal/target.hostname\" and \"principal/target.asset.hostname\" were aligned, and on November 1, 2023, the parser was promoted to default."],["Additional mappings were added for deprecated noun.labels on July 19, 2024."]]],[]]
